Cyber Operations Analyst

Please review the job details below.

Job Summary 

The Maxar Cybersecurity team is seeking an experienced Cybersecurity Operations Analyst who will provide ongoing support for the Cybersecurity Operations Center (CSOC) in the areas of incident response and investigation. This person will be responsible for providing initial, front-line, analysis and resolution of security alerts as generated by the SIEM and other monitoring solutions capable of generating alerts. 

Primary Duties and Responsibilities  

• Monitor security tools and provide appropriate remediation response when necessary. 

• Escalate security events as needed and/or driven by process. 

• Perform and/or coordinate information gathering and analysis that will be provided to Maxar IT teams responsible for clearing actions. 

• Interact with MDR analysts to conduct triage and analysis of real-time data feeds and alerts to detect potential intrusions. 

• Work with Cybersecurity Engineering resources to correct issues with log source generation, security tool issues, and building out of automation run books. 

• Implement changes to the technologies required, including inclusion of log sources/types and changes to alerts. 

• Collaborate and support the vulnerability management team in identification and awareness of zero-day vulnerabilities. 

• Participate in Incident Response activities. 

Required Qualifications 

• Must be a U.S. Citizen 

• 2+ years' experience working in a Security Operations Center environment. 

• Experience with wide range of cybersecurity technologies including SIEM, EDR, Perimeter Email Protection, SOAR, and others.  

Preferred Qualifications 

• Education: A Bachelor of Science is preferred, with a focus on Information Security. 

• Professional certifications: CySA+, CISSP or equivalent cybersecurity certification. 

• Ability and willingness to share on-call responsibilities, work non-standard hours, and aid cybersecurity investigations. 

• General network and system/application architecture/administration principles 

• General knowledge of monitoring system architecture maintained by Cybersecurity such as SIEM and Log Management architecture. 

• Understanding of current trends in attacker and threat actor tools, techniques, and procedures. 

• Experience with Windows, Linux and MacOS environments. 

• Professional experience with AWS. 

• Experience with network security and networking technologies, as well as with system, security, and network monitoring tools.

Location 

Remote 

Our salary ranges are market-driven and set to allow for flexibility. Individual pay will be competitive based on a candidate’s unique set of knowledge, skills, and geographic diversity, with earnings potential commensurate with experience. The range for this position is:

Maxar employees must follow all applicable Maxar policies and COVID-19 requirements as well as those of Maxar customers and third parties. Individual job requirements may vary, and Maxar reserves the right to modify its policies and requirements as it deems appropriate in accordance with applicable law.

Maxar Technologies values diversity in the workplace and is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.